Skip to main content
CVE-2019-9055 HIGH POC THREAT Act Now

An issue was discovered in CMS Made Simple 2.2.8. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Deserialization Cms Made Simple
NVD GitHub
CVSS 3.0
8.8
EPSS
12.5%
CVE-2019-3878 HIGH POC PATCH This Week

A vulnerability was found in mod_auth_mellon before v0.14.2. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available.

Authentication Bypass Apache Mod Auth Mellon Fedora Enterprise Linux +7
NVD GitHub
CVSS 3.0
8.1
EPSS
3.0%
CVE-2019-9053 HIGH POC THREAT This Week

An issue was discovered in CMS Made Simple 2.2.8. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

SQLi Cms Made Simple
NVD GitHub Exploit-DB
CVSS 3.0
8.1
EPSS
56.0%
CVE-2019-9764 HIGH POC PATCH This Week

HashiCorp Consul 1.4.3 lacks server hostname verification for agent-to-agent TLS communication. Rated high severity (CVSS 7.4), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Information Disclosure Hashicorp HashiCorp Consul
NVD GitHub
CVSS 3.0
7.4
EPSS
0.6%
CVE-2019-9744 HIGH This Week

An issue was discovered on PHOENIX CONTACT FL NAT SMCS 8TX, FL NAT SMN 8TX, FL NAT SMN 8TX-M, and FL NAT SMN 8TX-M-DMG devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Session Fixation Fl Nat Smn 8Tx M Dmg Firmware Fl Nat Smn 8Tx M Firmware Fl Nat Smn 8Tx Firmware +1
NVD
CVSS 3.0
8.8
EPSS
1.6%
CVE-2019-9743 HIGH This Week

An issue was discovered on PHOENIX CONTACT RAD-80211-XD and RAD-80211-XD/HP-BUS devices. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

HP Command Injection Rad 80211 Xd Hp Bus Firmware Rad 80211 Xd Firmware
NVD
CVSS 3.0
8.8
EPSS
3.5%
CVE-2019-3849 HIGH PATCH This Week

A vulnerability was found in moodle before versions 3.6.3, 3.5.5 and 3.4.8. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity.

Authentication Bypass Moodle
NVD
CVSS 3.1
8.8
EPSS
1.0%
CVE-2019-9061 HIGH This Week

An issue was discovered in CMS Made Simple 2.2.8. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Deserialization Cms Made Simple
NVD
CVSS 3.1
8.8
EPSS
1.6%
CVE-2019-9057 HIGH This Week

An issue was discovered in CMS Made Simple 2.2.8. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Deserialization Cms Made Simple
NVD
CVSS 3.1
8.8
EPSS
1.6%
CVE-2019-8988 HIGH This Week

The application server component of TIBCO Software Inc.'s TIBCO Data Science for AWS, and TIBCO Spotfire Data Science contains a persistent cross-site contains a vulnerability that theoretically. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Data Science For Aws Spotfire Data Science
NVD
CVSS 3.1
8.1
EPSS
1.8%
CVE-2019-10060 HIGH This Week

The Verix Multi-app Conductor application 2.7 for Verifone Verix suffers from a buffer overflow vulnerability that allows attackers to execute arbitrary code via a long configuration key value. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Buffer Overflow RCE Verix Multi App Conductor
NVD GitHub
CVSS 3.0
8.1
EPSS
1.7%
CVE-2019-3830 HIGH PATCH This Week

A vulnerability was found in ceilometer before version 12.0.0.0rc1. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity.

Information Disclosure Ceilometer Openstack
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2019-1572 HIGH This Week

PAN-OS 9.0.0 may allow an unauthenticated remote user to access php files. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Paloalto PHP Information Disclosure Pan Os
NVD
CVSS 3.0
7.5
EPSS
2.5%
CVE-2019-3804 HIGH PATCH This Week

It was found that cockpit before version 184 used glib's base64 decode functionality incorrectly resulting in a denial of service attack. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

Denial Of Service Cockpit Fedora Virtualization
NVD GitHub
CVSS 3.1
7.5
EPSS
4.9%
CVE-2019-7715 HIGH This Week

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Integrity Rtos
NVD GitHub
CVSS 3.0
7.5
EPSS
1.5%
CVE-2019-7712 HIGH This Week

An issue was discovered in handler_ipcom_shell_pwd in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Integrity Rtos
NVD GitHub
CVSS 3.0
7.5
EPSS
1.5%
CVE-2019-7711 HIGH This Week

An issue was discovered in the Interpeak IPCOMShell TELNET server on Green Hills INTEGRITY RTOS 5.0.4. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Integrity Rtos
NVD GitHub
CVSS 3.0
7.5
EPSS
1.5%
CVE-2019-9059 HIGH This Week

An issue was discovered in CMS Made Simple 2.2.8. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Cms Made Simple
NVD
CVSS 3.0
7.2
EPSS
1.8%
CVE-2019-9058 HIGH This Week

An issue was discovered in CMS Made Simple 2.2.8. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Code Injection PHP Prototype Pollution Cms Made Simple
NVD
CVSS 3.1
7.2
EPSS
1.2%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy